Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: tBlaoIIE3ME5/yGEfDmDY7j5d36Fs2w2TK7ITPrMXnk=
Subject key identifier: B9:8E:A0:FF:5F:5D:E7:21:95:55:61:C0:85:5B:97:E0:12:54:E1:74
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019A2C9F3F4C03CDD62B9CB922DF43ACEF3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 061C
Signing time: Tue 28 Oct 2025 21:00:25 +0000
Manifest this update: Tue 28 Oct 2025 21:00:25 +0000
Manifest next update: Wed 29 Oct 2025 21:00:25 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: BjqRvI0ejt1YxHAix8WSs0Z7dSYrigDyHu4XyxGkgxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:9f:3f:4c:03:cd:d6:2b:9c:b9:22:df:43:ac:ef:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Oct 28 21:00:25 2025 GMT
Not After : Oct 29 21:00:25 2025 GMT
Subject: CN=b98ea0ff5f5de721955561c0855b97e01254e174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4b:32:42:c0:d3:fb:70:69:9a:72:e0:f1:b0:
02:4e:eb:72:88:43:43:60:a7:65:cc:ac:68:a3:63:
52:7b:94:b4:ab:4b:99:36:c4:0e:89:97:4b:fe:7e:
76:77:89:c5:b3:93:79:e9:4b:9a:b0:c1:54:5e:aa:
85:07:c0:6f:91:e8:8f:4b:0b:14:ca:ac:60:35:b3:
01:2d:d5:0c:0f:bc:7b:26:c0:d2:36:01:f2:5b:21:
87:ba:a5:da:50:37:e5:d3:20:df:c4:13:59:d4:35:
f8:1f:52:8d:6a:6f:3b:17:62:fe:97:a7:d5:93:51:
a9:cd:48:b9:4b:6e:b1:43:37:be:f8:0d:8f:08:d0:
d3:42:a4:24:d6:67:ff:a5:dc:a9:1b:30:09:74:63:
1e:ce:62:8f:32:0e:26:09:21:a7:96:59:74:e7:2a:
5d:ce:2e:f6:12:ad:ab:9d:28:4d:bb:3b:88:ed:59:
6d:51:00:96:1a:7c:fc:d7:16:8d:31:da:02:49:1b:
65:30:cc:de:82:f9:2d:9a:fa:c4:34:35:f6:e3:c9:
bc:47:7b:d8:c6:ab:99:6f:ba:cc:ba:17:e8:aa:6c:
5f:a1:44:1c:89:6a:26:f4:e4:42:d1:19:76:34:99:
2f:38:b2:2a:65:97:58:ff:01:52:d5:b8:04:f9:68:
01:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8E:A0:FF:5F:5D:E7:21:95:55:61:C0:85:5B:97:E0:12:54:E1:74
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:6b:59:24:bd:ff:d5:9e:a5:e4:42:38:da:82:23:cc:26:85:
33:45:6f:f8:03:a2:13:de:2a:ab:61:f5:6b:3a:48:d7:9c:c1:
ac:c4:2b:b5:11:30:23:a0:b1:74:63:81:cd:cf:f2:8c:3b:a7:
7e:b4:29:6d:c8:8f:17:f4:46:61:f4:d6:ff:d2:f3:72:83:f6:
a1:ab:0a:20:ca:79:50:2a:68:91:65:d9:da:fd:34:a4:78:e7:
af:cb:4b:da:68:03:64:cf:17:49:7f:00:c0:46:10:48:cd:33:
2e:25:f7:6b:22:59:b9:f1:26:a7:0a:fd:7f:21:f3:0e:c0:ea:
08:08:1b:ed:42:25:56:8d:82:b1:4d:73:14:25:86:c5:9e:cc:
dc:b4:0c:b3:c9:52:8b:57:39:43:4b:73:0a:96:43:9f:71:e6:
4e:d8:4b:0a:78:65:67:59:94:18:21:8f:81:eb:08:08:4a:2a:
a0:a5:da:3b:5e:5f:65:0c:ab:de:f0:07:a0:4a:b0:a8:44:e3:
7a:d2:d9:01:5d:28:65:d7:68:f6:3c:f7:59:44:c1:be:c2:5a:
1c:6c:29:06:3c:aa:c7:df:2a:f4:ad:57:18:3a:be:32:30:13:
cb:05:b9:1e:a9:e6:00:02:f9:28:16:f9:9a:90:41:6b:e7:10:
46:d8:28:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 22:19:19 2025 by rpki-client